program:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x0, &(0x7f0000000140)={[{@nouid32}]}, 0x1, 0x461, &(0x7f0000000540)="$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")
r0 = fsopen(0x0, 0x1)
fsmount(r0, 0x0, 0x82)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./bus\x00', 0x105042, 0x1db)
socket$nl_generic(0x10, 0x3, 0x10)
mount(&(0x7f0000000280)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x5000, 0x0)
r1 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0)
ioctl$LOOP_SET_STATUS64(r1, 0x4c04, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x0, 0x8005, 0x0, 0x0, 0x15, 0x0, "ef359f413bb93852f7d6a4ae6dddfbd1ce5d29c2ee5e5ca9000ff8ee09e737ff0edf110ff4117639c2eb4b78c660e677df701905b9aafab4afaaf755a3f6a004", "036c47c6780820d1cbf7966d61fdcf335263bd9bffbcc2542ded71038259ca171ce1a311ef54ec32d71e14ef3dc177e9b48b00", "f28359738e229a4c66810000000000d300e6d602000000000000000000000001", [0x200]})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000a00)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x3848da646183896f}, 0x40040)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101042, 0x0)
pwrite64(r2, &(0x7f0000000140)='2', 0xfdef, 0xfecc)

[   75.371370][ T4709] Bluetooth: hci0: command tx timeout
[   75.433591][ T5361] loop0: detected capacity change from 0 to 512
[   75.482022][ T5361] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   75.514496][   T25] audit: type=1800 audit(1757149090.426:2): pid=5361 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.0" name="bus" dev="loop0" ino=18 res=0 errno=0
[   75.551260][ T5361] loop0: detected capacity change from 512 to 64
[   75.670784][ T5361] ------------[ cut here ]------------
[   75.673128][ T5361] kernel BUG at fs/ext4/mballoc.c:4755!
[   75.675310][ T5361] Oops: invalid opcode: 0000 [#1] SMP KASAN NOPTI
[   75.677778][ T5361] CPU: 0 UID: 0 PID: 5361 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) 
[   75.681648][ T5361] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   75.686298][ T5361] RIP: 0010:ext4_mb_use_inode_pa+0x6c1/0x720
[   75.688928][ T5361] Code: e8 94 c1 aa ff 48 ba 00 00 00 00 00 fc ff df e9 da fa ff ff e8 c0 d1 45 ff 90 0f 0b e8 b8 d1 45 ff 90 0f 0b e8 b0 d1 45 ff 90 <0f> 0b e8 a8 d1 45 ff 90 0f 0b 48 8b 0c 24 80 e1 07 80 c1 03 38 c1
[   75.697180][ T5361] RSP: 0018:ffffc9000d33ea48 EFLAGS: 00010287
[   75.699864][ T5361] RAX: ffffffff8279eca0 RBX: 00000000fffffffe RCX: 0000000000100000
[   75.703316][ T5361] RDX: ffffc9000df9a000 RSI: 00000000000086fe RDI: 00000000000086ff
[   75.706784][ T5361] RBP: 1ffff11008911041 R08: ffff88804488941b R09: 1ffff11008911283
[   75.710229][ T5361] R10: dffffc0000000000 R11: ffffed1008911284 R12: 0000000000000000
[   75.713754][ T5361] R13: 0000000000000041 R14: 1ffff11008911286 R15: ffff888044889430
[   75.717271][ T5361] FS:  00007f30270546c0(0000) GS:ffff88808d20c000(0000) knlGS:0000000000000000
[   75.721136][ T5361] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   75.724031][ T5361] CR2: 00007f3335564000 CR3: 00000000435e0000 CR4: 0000000000352ef0
[   75.727676][ T5361] Call Trace:
[   75.729290][ T5361]  <TASK>
[   75.730648][ T5361]  ext4_mb_use_preallocated+0x660/0x13f0
[   75.733196][ T5361]  ext4_mb_new_blocks+0x5b4/0x4720
[   75.735550][ T5361]  ? rcu_is_watching+0x15/0xb0
[   75.737664][ T5361]  ? __pfx_ext4_new_meta_blocks+0x10/0x10
[   75.739992][ T5361]  ? __pfx_ext4_mb_new_blocks+0x10/0x10
[   75.742192][ T5361]  ? ext4_block_to_path+0x297/0x6f0
[   75.744259][ T5361]  ext4_ind_map_blocks+0xe42/0x21c0
[   75.746314][ T5361]  ? __pfx_ext4_ind_map_blocks+0x10/0x10
[   75.748666][ T5361]  ? __pfx_down_write+0x10/0x10
[   75.750951][ T5361]  ? ext4_es_lookup_extent+0x622/0xa70
[   75.753353][ T5361]  ext4_map_blocks+0x7fe/0x1740
[   75.755530][ T5361]  ? __pfx_ext4_map_blocks+0x10/0x10
[   75.757866][ T5361]  ? rcu_is_watching+0x15/0xb0
[   75.760019][ T5361]  ext4_do_writepages+0x16a1/0x4610
[   75.762322][ T5361]  ? __free_object+0x4e3/0x6d0
[   75.764372][ T5361]  ? lockdep_hardirqs_on+0x9c/0x150
[   75.766735][ T5361]  ? _raw_spin_unlock_irqrestore+0x85/0x110
[   75.769343][ T5361]  ? __pfx_ext4_do_writepages+0x10/0x10
[   75.771819][ T5361]  ? __lock_acquire+0xab9/0xd20
[   75.773973][ T5361]  ? __lock_acquire+0xab9/0xd20
[   75.776201][ T5361]  ? rcu_read_lock_any_held+0xb3/0x120
[   75.778582][ T5361]  ext4_writepages+0x205/0x350
[   75.780762][ T5361]  ? __pfx_ext4_writepages+0x10/0x10
[   75.783106][ T5361]  ? __lock_acquire+0xab9/0xd20
[   75.784966][ T5361]  ? __pfx_ext4_writepages+0x10/0x10
[   75.787195][ T5361]  do_writepages+0x32e/0x550
[   75.789146][ T5361]  ? do_raw_spin_unlock+0x4d/0x240
[   75.791390][ T5361]  file_write_and_wait_range+0x23e/0x340
[   75.793760][ T5361]  ? __pfx_file_write_and_wait_range+0x10/0x10
[   75.795939][ T5361]  ? generic_perform_write+0x809/0x900
[   75.797875][ T5361]  generic_buffers_fsync_noflush+0x6c/0x180
[   75.800187][ T5361]  ext4_sync_file+0x332/0xb20
[   75.801990][ T5361]  ext4_buffered_write_iter+0x2ca/0x3a0
[   75.804144][ T5361]  ext4_file_write_iter+0x298/0x1bc0
[   75.806087][ T5361]  ? __pfx_ext4_file_write_iter+0x10/0x10
[   75.808297][ T5361]  vfs_write+0x5c9/0xb30
[   75.809876][ T5361]  ? __pfx_ext4_file_write_iter+0x10/0x10
[   75.812405][ T5361]  ? __pfx_vfs_write+0x10/0x10
[   75.814572][ T5361]  ? __fget_files+0x2a/0x420
[   75.816629][ T5361]  __x64_sys_pwrite64+0x193/0x220
[   75.818803][ T5361]  ? __pfx___x64_sys_pwrite64+0x10/0x10
[   75.821098][ T5361]  ? rcu_is_watching+0x15/0xb0
[   75.823029][ T5361]  ? do_syscall_64+0xbe/0x3b0
[   75.824933][ T5361]  do_syscall_64+0xfa/0x3b0
[   75.826791][ T5361]  ? lockdep_hardirqs_on+0x9c/0x150
[   75.829036][ T5361]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   75.831773][ T5361]  ? clear_bhb_loop+0x60/0xb0
[   75.833916][ T5361]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   75.836547][ T5361] RIP: 0033:0x7f302618ebe9
[   75.838499][ T5361] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   75.846689][ T5361] RSP: 002b:00007f3027054038 EFLAGS: 00000246 ORIG_RAX: 0000000000000012
[   75.850355][ T5361] RAX: ffffffffffffffda RBX: 00007f30263c5fa0 RCX: 00007f302618ebe9
[   75.853765][ T5361] RDX: 000000000000fdef RSI: 0000200000000140 RDI: 0000000000000007
[   75.857222][ T5361] RBP: 00007f3026211e19 R08: 0000000000000000 R09: 0000000000000000
[   75.860725][ T5361] R10: 000000000000fecc R11: 0000000000000246 R12: 0000000000000000
[   75.864141][ T5361] R13: 00007f30263c6038 R14: 00007f30263c5fa0 R15: 00007fff484e5f58
[   75.867533][ T5361]  </TASK>
[   75.868900][ T5361] Modules linked in:
[   75.871120][ T5361] ---[ end trace 0000000000000000 ]---
[   75.873728][ T5361] RIP: 0010:ext4_mb_use_inode_pa+0x6c1/0x720
[   75.876330][ T5361] Code: e8 94 c1 aa ff 48 ba 00 00 00 00 00 fc ff df e9 da fa ff ff e8 c0 d1 45 ff 90 0f 0b e8 b8 d1 45 ff 90 0f 0b e8 b0 d1 45 ff 90 <0f> 0b e8 a8 d1 45 ff 90 0f 0b 48 8b 0c 24 80 e1 07 80 c1 03 38 c1
[   75.885775][ T5361] RSP: 0018:ffffc9000d33ea48 EFLAGS: 00010287
[   75.888478][ T5361] RAX: ffffffff8279eca0 RBX: 00000000fffffffe RCX: 0000000000100000
[   75.891947][ T5361] RDX: ffffc9000df9a000 RSI: 00000000000086fe RDI: 00000000000086ff
[   75.895685][ T5361] RBP: 1ffff11008911041 R08: ffff88804488941b R09: 1ffff11008911283
[   75.899054][ T5361] R10: dffffc0000000000 R11: ffffed1008911284 R12: 0000000000000000
[   75.902515][ T5361] R13: 0000000000000041 R14: 1ffff11008911286 R15: ffff888044889430
[   75.905797][ T5361] FS:  00007f30270546c0(0000) GS:ffff88808d20c000(0000) knlGS:0000000000000000
[   75.909837][ T5361] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   75.912518][ T5361] CR2: 00007f3335564000 CR3: 00000000435e0000 CR4: 0000000000352ef0
[   75.915863][ T5361] Kernel panic - not syncing: Fatal exception
[   75.918868][ T5361] Kernel Offset: disabled
[   75.920833][ T5361] Rebooting in 86400 seconds..